Massive bank app security holes: You might want to go back to that money under the mattress tactic

Massive bank app security holes: You might want to go back to that money under the mattress tactic

Decompiling the app also allows an adversary to understand how the app detects jailbroken mobile devices, which, once vulnerabilities (such as API keys, private keys, and credentials) are found in the source code, results in theft of money through banking trojans, username/password theft or account takeover using overlay screens, and the theft of confidential data."

Modern Time Banking

Modern Time Banking

Volunteering at a local community center. Volunteer activity and community engagement would be tracked by an app and seeded, initially, by the government. You could earn time banking points through: Volunteering at a local shelter.

Pointing to the future: the next step in fraud prevention

Pointing to the future: the next step in fraud prevention

Considering that five million UK consumers had funds stolen from their bank or credit card account in 2017 – at an average cost of £840 each according to comparison site ComparetheMarket – it is vital that issuers are able to resolve payment disputes quickly and efficiently to maintain cardholder loyalty and brand reputation.

The Government wants to free up your bank data. Here's what that means for you

The Government wants to free up your bank data. Here's what that means for you

The Consumer Data Right (CDR), which begins to come online mid-year, aims to give Australians more agency to access and control parts of their personal information.

Privacy Foundation says privacy 'severely' underestimated in rushing through CDR

Privacy Foundation says privacy 'severely' underestimated in rushing through CDR

"We consider the framework as it currently stands unnecessarily exposes people to harm because the fundamental privacy safeguards are not in place and risks have been severely underestimated by the government," the APF wrote in its submission [PDF] in response to the Treasury Laws Amendment (Consumer Data Right) Bill 2019.

SS7 Cellular Network Flaw Nobody Wants To Fix Now Being Exploited To Drain Bank Accounts

SS7 Cellular Network Flaw Nobody Wants To Fix Now Being Exploited To Drain Bank Accounts

SS7 Cellular Network Flaw Nobody Wants To Fix Now Being Exploited To Drain Bank Accounts (Mis)Uses of Technology from the whoops-a-daisy dept Karl Bode Back in 2017, you might recall how hackers and security researchers highlighted long-standing vulnerabilities in Signaling System 7 (SS7, or Common Channel Signalling System 7 in the US), a series of protocols first built in 1975 to help connect phone carriers around the world.

Federal Privacy Commissioner Investigating Claims RBC Could Read Private Facebook Messages

Federal Privacy Commissioner Investigating Claims RBC Could Read Private Facebook Messages

The federal government has launched an investigation into allegations the Royal Bank of Canada had access to the private Facebook messages of people using its app, Privacy Commissioner Daniel Therrien has told MPs. Announcements, Events & more from Tyee and select partners The New York Times reported in December that RBC, Spotify and Netflix had all been given the ability to read the private messages of Facebook users who connected with the businesses.

SBI Investigates Reported Massive Data Leak

SBI Investigates Reported Massive Data Leak

See Also: Key Drivers to Enable Digital Transformation in Financial Services The government-owned bank, which has 740 million active accounts, neglected to password-protect one of its servers based in a Mumbai data center, enabling easy access to customer data, TechCrunch reports.

India’s largest bank SBI leaked account data on millions of customers

India’s largest bank SBI leaked account data on millions of customers

India’s largest bank has secured an unprotected server that allowed anyone to access financial information on millions of its customers, like bank balances and recent transactions. The passwordless database allowed us to see all of the text messages going to customers in real-time, including their phone numbers, bank balances, and recent transactions.

Massive data breach involving millions of mortgage documents just got much worse

Massive data breach involving millions of mortgage documents just got much worse

Sponsor Content The original mortgage documents were converted into digital files that were not easily readable, but people’s highly sensitive personal information, including names, addresses, dates of birth, Social Security numbers, and other information was accessible in the database for at least two weeks.

Millions of bank loan and mortgage documents have leaked online

Millions of bank loan and mortgage documents have leaked online

“This information would be a gold mine for cyber criminals who would have everything they need to steal identities, file false tax returns, get loans or credit cards.” Although the documents originate from these financiers, one bank — Citi, which helped to secure the data — said it had no current relationship with the company.

These malicious Android apps will only strike when you move your smartphone

These malicious Android apps will only strike when you move your smartphone

If sensors do generate motion data then the malicious apps will spring and attempt to trick the user into downloading and installing the Anubis Trojan by way of an APK and fake system update message.

Bitcoin Banks Are Coming. Wave Goodbye to Your Privacy

Bitcoin Banks Are Coming. Wave Goodbye to Your Privacy

Bitcoin banking: trends so far Here are just a few of the reasons for this prediction: Fidelity (one of the biggest asset management companies on the planet) is launching a crypto custody service .

If you value privacy, resist any form of national ID cards

If you value privacy, resist any form of national ID cards

Nonetheless, we must remain vigilant for calls for increased data gathering and national ID systems that put our privacy at risk, especially those calls that are couched in the name of immigration enforcement and anti-terrorism efforts.

What is Phishing and How Do I Prevent It?

What is Phishing and How Do I Prevent It?

While phishing is mostly carried out through emails but it can be done using other platforms such as social media and chatting apps. Don’t click on suspicious links: Got a link in an email? Falling for a phishing scam just needs the right bait.

Database leak exposes millions of two-factor codes and reset links sent by SMS

Database leak exposes millions of two-factor codes and reset links sent by SMS

The database stored texts that were sent through a gateway Voxox provided to businesses that wanted an automated way to send data for password resets and other types of account management by SMS.

In Sweden, cash is almost extinct and people implant microchips in their hands to pay for things

In Sweden, cash is almost extinct and people implant microchips in their hands to pay for things

The central bank, which predicts cash may fade from Sweden, is testing a digital currency — an e-krona — to keep firm control of the money supply.

Pssst... Wanna buy a digital identity? Only $50

Pssst... Wanna buy a digital identity? Only $50

It finds that for under $50, criminals can sell a person's complete digital life on the dark web, including data from breached social media accounts; banking details; remote access to servers or desktops; data from popular services like Uber, Netflix, and Spotify; and accounts for gaming websites, dating apps and porn websites, which might include credit card information.

Trudeau defends Statistics Canada move to collect banking info of 500,000 Canadians

Trudeau defends Statistics Canada move to collect banking info of 500,000 Canadians

Conservative House Leader Candice Bergen grilled Trudeau during question period Monday following a report by Global News that revealed Statistics Canada is asking the country’s nine largest banks for the transaction data of 500,000 randomly chosen Canadians, including everything from bill payments to cash withdrawals from ATMs to credit card payments and even account balances.

Blockchain is disrupting the status quo

Blockchain is disrupting the status quo

The core model of a credit agency is to share costs among clients and charge excessive interest rates and transactional costs ensuring that the “good borrowers” cover those who don’t repay their debt.

Major Centralized Systems are Hacked Multiple Times a Year

Major Centralized Systems are Hacked Multiple Times a Year

Downloads should be restricted, particularly on company laptops and systems which are linked to central servers where information is stored. should be restricted, particularly on company laptops and systems which are linked to central servers where information is stored.

Decentralization for a better tomorrow – Sankalp Shangari – Medium

Decentralization for a better tomorrow – Sankalp Shangari – Medium

Blockchain technology lies at the heart of decentralization because it’s an immutable, transparent, hack-proof and distributed ledger that stores data in multiple nodes. Implication of this technology in financial institutions will reduce the time and costs exhausted by manual labor that is employed for smooth processing of data.

Introducing the Qubes U2F Proxy

Introducing the Qubes U2F Proxy

This means that if anything in your twitter qube were compromised — the browser or even the OS itself — it would still not be able to access the U2F keys on your token for any other websites or services, like your email and bank accounts.

Google Reportedly Bought Your Banking Data in Secret, and That's Not Even the Bad News

Google Reportedly Bought Your Banking Data in Secret, and That's Not Even the Bad News

The worse news is that Google has reportedly been doing a significant part of it in secret, and other tech companies like Facebook and Amazon are exploring ways to get ahold of your banking data, too.

Fiserv Flaw Exposed Customer Data at Hundreds of Banks — Krebs on Security

Fiserv Flaw Exposed Customer Data at Hundreds of Banks — Krebs on Security

Two weeks ago this author heard from security researcher Kristian Erik Hermansen, who said he’d discovered something curious while logged in to an account at a tiny local bank that uses Fiserv’s platform.

Stop Sending Money on Venmo. There Are Better Alternatives

Stop Sending Money on Venmo. There Are Better Alternatives

Most Venmo competitors, like Square’s Cash app, share the same core feature: You can send money with a few taps and swipes. Your banking app may also already have the payment transfer service Zelle built into it, which could become more popular than Venmo this year.

Behavioral biometrics: Websites and apps are learning from how you type, hold your phone, and use your mouse

Behavioral biometrics: Websites and apps are learning from how you type, hold your phone, and use your mouse

Few companies are admitting to the use of behavioral biometrics – much less, actively seeking consent from its users to gather and analyze this information.